Bugzilla – Bug 963633
VUL-0: CVE-2016-1931: MozillaFirefox: Memory safety bugs fixed in Firefox 44
Last modified: 2020-04-05 18:20:07 UTC
https://www.mozilla.org/en-US/security/advisories/mfsa2016-01/ Mozilla developers and community identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code. Bob Clary, Carsten Book, Christian Holler, Nicolas Pierron, Eric Rescorla, Tyson Smith, Gabor Krizsanits, and Randell Jesup reported memory safety problems and crashes that affect Firefox 43. References: https://bugzilla.mozilla.org/buglist.cgi?bug_id=1229825,1231121,1180064,1186973,1206675,1209546,1209368,1209366,1209365,1209358,1207298,1222015,1234576 openSUSE only.
bugbot adjusting priority
openSUSE update is running
Releasing updates for openSUSE only bugs.
openSUSE-SU-2016:0309-1: An update that fixes 14 vulnerabilities is now available. Category: security (important) Bug References: 963633,963634,963635,963637,963641,963643,963644,963645,963731 CVE References: CVE-2015-7208,CVE-2016-1930,CVE-2016-1931,CVE-2016-1933,CVE-2016-1935,CVE-2016-1937,CVE-2016-1938,CVE-2016-1939,CVE-2016-1942,CVE-2016-1943,CVE-2016-1944,CVE-2016-1945,CVE-2016-1946,CVE-2016-1947 Sources used: openSUSE Leap 42.1 (src): MozillaFirefox-44.0-12.2, mozilla-nspr-4.11-7.1, mozilla-nss-3.21-9.1 openSUSE 13.2 (src): MozillaFirefox-44.0-59.1, mozilla-nspr-4.11-12.1, mozilla-nss-3.21-25.1